dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,558 Commits 11 Branches 78 Tags
Commit Graph

1558 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Nanne Baars
fd2bdce270 Roundtrip for challenge 2 done 2017-04-08 11:08:33 +02:00
Nanne Baars
931da87c2b Challenge 2 JavaScript is working 2017-04-08 10:31:56 +02:00
Nanne Baars
12f680407b Added validation to detect duplicate users during registration 2017-04-08 08:32:19 +02:00
Nanne Baars
8500749dde Updated README for building and starting WebGoat 2017-04-08 08:32:19 +02:00
Nanne Baars
ed85c97306 Fixing Travis build 2017-04-08 08:32:19 +02:00
Nanne Baars
e9884edf19 Fixed exception while logging in with unknown user 2017-04-08 08:32:19 +02:00
Nanne Baars
08f0c94a57 Fixed logout 2017-04-08 08:32:19 +02:00
Nanne Baars
a3d2ed171a First steps for challenge 2 2017-04-08 08:04:16 +02:00
Nanne Baars
9f7f68f1f4 wip 2017-03-23 20:30:23 +01:00
Nanne Baars
debc1e4b73 Added more for challenge 1 including input form group for flag 2017-03-23 16:12:04 +01:00
Nanne Baars
36b10c07bc First attempt for challenge 2017-03-23 11:49:34 +01:00
Nanne Baars
98000d6002 Fixing links in several lessons 2017-03-23 09:41:01 +01:00
Gerard de Leeuw
634a4c75b6 Fix path to javascript file 2017-03-31 12:11:14 +02:00
Gerard de Leeuw
e094dd6d14 Typo's 2017-03-31 12:06:45 +02:00
Nanne Baars
034bcf1305 Fixing Travis build 2017-03-22 20:53:10 +01:00
Nanne Baars
7f9af71c4c Updating Docker files to reflect new naming of the server standalone jar 2017-03-22 17:43:46 +01:00
Nanne Baars
90eee0e2d8 Adding write_delay option to hsql database (otherwise users were not persisted in database correctly) 2017-03-22 17:04:44 +01:00
Nanne Baars
c14b172503 Removed default values from login screen 2017-03-22 15:53:50 +01:00
Nanne Baars
53d30e2274 Fixed saving lesson tracker with reloadable classloader 2017-03-22 15:51:57 +01:00
Nanne Baars
259fd19c1b - Introduced user registration 
- Now using Spring Boot for classloading, this way local development does not need to restart the complete server
- Fixed all kinds of dependencies on the names of the lessons necessary to keep in mind during the creation of a lesson.
- Simplied loading of resources, by adding resource mappings in MvcConfig.
- Refactored plugin loading, now only one class is left for loading the lessons.
 2017-03-22 11:35:14 +01:00
Nanne Baars
9b86aaba05 Adding challenge 2017-03-22 00:09:17 +01:00
hillstonenet-interns-bj
ad3e9439ec [fix] SQLi Lessons 6a-b: lesson passed's boolean 2017-03-03 17:19:33 +01:00
hillstonenet-interns-bj
f5c3610aba [fix] path in HttpProxies html file was wrong 2017-03-02 21:34:31 +01:00
Kristoffer Schneider
26ab0dc712 Added support to build an Docker container to run it on Raspberry Pi (#329) 
Added support to build an Docker container to run it on Raspberry Pi #329
 2017-03-02 21:31:40 +01:00
Nanne Baars
2b9185d85f Merge pull request #328 from misfir3/develop 
Moved paging to top of content
 2017-03-02 21:31:04 +01:00
Nanne Baars
f71d02fc6a Merge branch 'develop' into develop 2017-03-02 21:24:09 +01:00
Nanne Baars
2d6235e4f0 Provide Server-side service to support UI localization #265 
- Now also enabled for adoc
 2017-03-02 21:17:21 +01:00
Jason White
153dc57731 Basic solutions cheat file for now 2017-02-17 16:18:57 -05:00
Jason White
3193b591d8 commenting out latter part of XSS for now 2017-02-17 16:18:36 -05:00
Jason White
ac6e8b59b7 XSS updates 2017-02-17 15:59:38 -05:00
Jason White
d99a1d8448 temp. dep. mgmt resolution 2017-02-17 14:53:23 -05:00
Jason White
7f532f0ffc XSS lesson updates 2017-02-17 13:05:54 -05:00
Jason White
af8f8c27a6 moving controls to top of content 2017-02-16 14:56:08 -05:00
Jason White
0763eac26b Merge remote-tracking branch 'upstream/develop' into develop 2017-02-16 09:09:58 -05:00
Jason White
d8cc2de080 resolving conflicts merge 2017-02-16 09:08:19 -05:00
mayhew64
0de569339c Cleanup of vulnerable components 2017-02-08 11:37:11 -05:00
mayhew64
27947cca96 Fixed the SQL Injection to return results upon success 2017-02-08 00:01:44 -05:00
mayhew64
33e807797c Xstream RCE works now 2017-02-07 23:51:05 -05:00
Nanne Baars
65d728dfff Solved issue with POST in vulnerable components lesson 2017-02-07 23:49:26 +01:00
Nanne Baars
8d3b028acc Solved issue with POST in vulnerable components lesson 2017-02-07 23:38:57 +01:00
mayhew64
a00546638a Merge branch 'develop' of https://github.com/WebGoat/WebGoat into develop 2017-02-07 16:06:45 -05:00
mayhew64
b4159385c1 Vulnerable components draft, fixed missing properties in httpbasics when user input was empty 2017-02-07 16:05:30 -05:00
Charles Truluck
92533b4fc1 Fixed grammatical error 2017-02-07 18:13:53 +01:00
Jason White
4664669ff2 cleaning up, fixing selected lesson class/es 2017-02-07 18:13:27 +01:00
Jason White
40844bd823 #319 updated content for proxy 2017-02-07 18:13:27 +01:00
mayhew64
85ef7ee1a4 Merge branch 'develop' of https://github.com/WebGoat/WebGoat into develop 2017-02-06 09:19:29 -05:00
Nanne Baars
ae82df3fb4 Fixed issue with loading messages in different language. As a standalone jar you can write properties back to messages.properties, this approach worked when you run with exploded classpath (target/classes etc). However failed when running inside Docker container. 2017-02-05 21:54:07 +01:00
Nanne Baars
d25700434e Added tests for assignments 2017-01-31 23:28:59 +01:00
Jason White
f72f0dbddc Merge branch 'develop' of github.com:misfir3/WebGoat into develop 2017-01-31 14:49:48 -05:00
Jason White
b4106919d0 cleaning up, fixing selected lesson class/es 2017-01-31 14:48:46 -05:00